This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4254 Views
  • 0 replies
  • 0 Likes

Windows Updates across a Site to Site VPN

I have a WSUS server. I have a Site to Site VPN from a PA-3020 at a hosting facility to a Cisco ASA on my corporate network. The PA-3020 is running 7.1.4. When I try to run updates from the servers in the hosting facility, it shows as ms-update in the Traffic Log. The Session End Reason is “tcp-rst-from-server”. I am allowing all traffic on...

Resolved! Static Route via CLI

I have a firewall with multiple Vsys/VRs. Need to add a static route from one VR to another and I know I can do it via GUI, however I like to use the CLI if possible. So would this command add the static route from one VR pointing to another? set network virtual-router VR-Inside routing-table ip static-route 10.10.10.10/32 nexthop next-vr VR-I...

Captive Web Portal isn't working as expected

We're a school and have just started implimenting BYOD for our Students. Along with this is the requirement to Authenticate the users their BYOD devices so we can monitor and filter their web usage. This is easily done with our PA-3050, or so we thought! Our current setup is that our Student BYOD devices are in their own VLAN (known to the PA vi...

Arcolite by L0 Member
  • 6036 Views
  • 3 replies
  • 0 Likes

Global Protect certificate error

Hi, We are testing GProtect 2.3.2 version and its not working fine.Debug GP client shows "WINHTTP CALLBACK_STATUS_FLAG_CERT_CN_INVALID". The certificate is issued with the Common Name clientvpn.xxx.xxx, and this is the address of the portal. If instead of the DNS name of the portal, we put the IP address, the client warns that the CN of the cert...

block specific user social media, google ads, youtube channel,apps store?

Dear all, my customer have some of this requirments, can palo alto do this stuff:1.can palo alto block specific user in social media like facebook. example: block user name contains john? or block twitter user?2. Block google ads?3. Block specific youtube channel, example: block youtube channel based on parameter Age-restricted content? or block...

What is the difference between Firewall throughput and Threat Prevention throughput?

My company has a 100mbps symetric ISP connection and will be purchasing a PAN firewall, PAN-200 or PAN-500. Is "Firewall throughput" the capacity to sort only on TCP/IP data while "Threat Prevention throughput" is the capacity to sort on the entire packet? If so, and we purchase the subscription for anti-malware protection then it seems that th...

Resolved! Alert on IP Activity

I have a manager that would like to setup an alert wheneever a certain IP address hits our network. Does anybody know of an easy way to do this without creating a security policy and just monitoring that policy?

BPry by Cyber Elite
  • 2359 Views
  • 2 replies
  • 0 Likes

QoS limiting download bandwidth for multiple subnets behind LAN interface.

Hi, I need to limit download bandwidth for multiple (more than 😎 subnets which are behind LAN interface. They need to have different limit values. I can't believe there is only 8 classes and I am limited to them. So is this a hardware limitation? What is the purpose of it? And most important, is there anything to workaround it? Thanks, Rahman

Can Not Registered My PA-200

Hello, I have registered the PA-200 on support web site, and the license is showed correct on the web GUI and on command "request license info", but it still show "device registered: no" on "show wildfire status".Do anyone know why ? And how can I make it to the "yes" so I can use the wildfire function? Please help me ! Thanks.

WS000003.JPG
mjkssg by L1 Bithead
  • 6908 Views
  • 9 replies
  • 1 Likes

Resolved! MineMeld outbound calls impacted by SSL interception

I could see the node was having problems pulling the external resource due it being decrypted and our CA being used. I added our CA to the Ubuntu store with the processes used here, but still no juice. http://askubuntu.com/questions/645818/how-to-install-certificates-for-command-line Thoughts?

Change to HTTP decoder

Did I miss a notice that the http decoder was being changed so that most of my rules based on the web-browsing app would break? Nearly all of my web-browsing traffic is suddenly being identified as unknown-tcp. I notice in the release notes for 646 app update that the http decoder was modified.

epeeler by L2 Linker
  • 2224 Views
  • 1 replies
  • 0 Likes
  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks